Forum Discussion

Cirrus

Jan 07, 2015

Difference between Floating and Self Ip's

When configuring firewall rules to allow clustered DMZ F5's to communicate with backend pool members, do i need to enter the Self IP's of both LTM's AND the floating IP, or just the Self IP's? My un...

Nimbostratus

Jan 07, 2015

Possibly. If you are using SNAT automap on the LTM, then you will need to configure the floating IP address in your admission rule because all traffic will originate from it. If you configure an explicit SNAT IP or pool, those will require admission also. If you are not using SNAT, then you should only require the Self IP's to allow for monitoring, but would also need to permit all client traffic from the internet as well, since the F5 will not change the source IP of the packet without SNAT enabled.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Difference between Floating and Self Ip's

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Using 2 Floating IP in the same VLAN for 2 different F5 HA Pairs

Copper SFP Differences

Test access sourcing from float

Can a floating IP be the next hop for routing?

Different policies same destination and pool

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS